IEEE Access
 2022
DOI: 10.1109/access.2022.3197786
|View full text |Cite
|
Sign up to set email alerts
|

xVDB: A High-Coverage Approach for Constructing a Vulnerability Database

Hyunji Hong
1
,
Seunghee Woo
2
,
Eun‐Jin Choi
3
et al.

Abstract: Security patches play an important role in detecting and fixing one-day vulnerabilities. However, collecting abundant security patches from diverse data sources is not a simple task. This is because (1) each data source provides vulnerability information in a different way and (2) many security patches cannot be directly collected from Common Vulnerabilities and Exposures (CVE) information (e.g., National Vulnerability Database (NVD) references). In this paper, we propose a high-coverage approach that collects… Show more

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
1

Citation Types

0
1
0

Year Published

2022
2022
2024
2024

Publication Types

Select...
3
1
1

Relationship

0
5

Authors

Journals

citations
Cited by 5 publications
(1 citation statement)
references
References 13 publications
(52 reference statements)
0
1
0
Order By: Relevance
“…Chen et al (2020) uses Bugzilla data as part of the training data, together with data from different issue trackers (e.g., Jira tickets, GitHub issues) toward the prediction of vulnerability relatedness. Hong et al (2022) proposes a high-coverage approach collecting known security patches by tracking multiple data sources including issue trackers like Bugzilla, GitHub projects, and information from Stack Overflow.…”
Section: Rq 3 What Are the Other Sources Of Information Adopted To F...mentioning
confidence: 99%

The Anatomy of a Vulnerability Database: A Systematic Mapping Study

Li
1
,
Moreschini
2
,
Zhang
3
et al. 2022
SSRN Journal
1
0
1
0
View full textAdd to dashboardCite
“…Chen et al (2020) uses Bugzilla data as part of the training data, together with data from different issue trackers (e.g., Jira tickets, GitHub issues) toward the prediction of vulnerability relatedness. Hong et al (2022) proposes a high-coverage approach collecting known security patches by tracking multiple data sources including issue trackers like Bugzilla, GitHub projects, and information from Stack Overflow.…”
Section: Rq 3 What Are the Other Sources Of Information Adopted To F...mentioning
confidence: 99%

The Anatomy of a Vulnerability Database: A Systematic Mapping Study

Li
1
,
Moreschini
2
,
Zhang
3
et al. 2022
SSRN Journal
1
0
1
0
View full textAdd to dashboardCite

The anatomy of a vulnerability database: A systematic mapping study

Li
1
,
Moreschini
2
,
Zhang
3
et al. 2023
Journal of Systems and Software
2
0
0
0
View full textAdd to dashboardCite

Known Vulnerabilities of Open Source Projects: Where Are the Fixes?

Sabetta,
Ponta,
Cabrera Lozoya
et al. 2024
IEEE Secur. Privacy
1
0
0
0
View full textAdd to dashboardCite
show abstract
scite logo

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

hi@scite.ai

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

Product
Browser ExtensionAssistant by sciteCitation Statement SearchReference CheckVisualizationsDashboardsExplore JournalsExplore OrganizationsExplore FundersEmbedding BadgeEmbedding Citation SearchPricing
Resources
BlogHelp & FAQAccessibility StatementAPI TermsFor Universities & GovernmentsFor ResearchersFor PublishersFor Corporate, Pharma & EnterpriseAuthor MarketingBecome an AffiliateGet an organization trial or quotescite Data & Services
About
News & PressCareersRead our PaperCoverage

BlogTerms and ConditionsAPI TermsPrivacy PolicyContactCookie PreferencesDo Not Sell or Share My Personal Information

Copyright © 2024 scite LLC. All rights reserved.

Made with 💙 for researchers

Part of the Research Solutions Family.